Problem with mangled caf files in CAFOpenArtRead() (storage/timecaf/caf.c bug?)
rra at stanford.edu
Sun Dec 19 21:03:11 UTC 2004
Xavier Roche <roche at exalead.com> writes:
> Problem: the 'lseek(fd, tocent.Offset, SEEK_SET) < 0)' (at caf.c:592) is
> successful (no error returned by the system - this is probably 'legal'
> to seek beyond a file boundary) and the mmap (at timecaf.c:463,
> 'private->mmapbase = mmap(NULL, private->mmaplen, PROT_READ, MAP_SHARED,
> fd, tmpoff)') returns a pointer to the "ghost" area. BUT reading in this
> "ghost" area lead to a BUS error (process stopped with a 'Bus error
> (core dumped)' message)
Yeah, an additional check has been added in CVS and will be in the next
release of INN.
Russ Allbery (rra at stanford.edu) <http://www.eyrie.org/~eagle/>
More information about the inn-bugs